Responsibilities
Provide level 3 technical support to the Regional MSS teams when needed. This includes working as part of a 24 x 7 on-call rotation.
Maintain current deployed baseline of alerts and signatures across over 70 technologies.
Develop, Document and Maintain parser support for new and supported technologies.
Document and Maintain secure baselines for all supported devices.
Document and Test upgrade paths for device operating systems, patches and hardware.
Define, Document and Maintain secure solutions for the connectivity between Security Operation Centers and customer devices.
Define and Execute Testing procedures to ensure device baselines are compatible with the MSS system and SOC management policies.
Participate in resolving technical issues surrounding new device integrations into the MSS System.
Define and Maintain training resources for the regional technical operations teams.
Qualifications
Top 3 requirements for this role are: Linux Redhat, scripting (preferably Python) and a security or intrusion background
Minimum of 4 years experience as system/network administrator in both NT & Unix environments, with hands on experience defining and maintaining configuration standards & baselines.
Minimum of 2 years experience as a large scale system administrator, including scripting and centralized performance management.
Minimum of 2 years Hands-on experience designing and implementing technical security solutions, including firewalls, virtual private networks and intrusion detection systems .
Minimum of 2 years Hands-on experience implementing and managing security information managers (SSIM and LogLogics).
Proficiency with shell scripting, python 2.4 and 2.6, SQL, network engineering and security engineer principles strongly preferred.
Proven ability to execute projects with defined scope, deliverables and timelines.
Excellent oral and written communication skills.
Proven technical writing experience .
Detail-Oriented, proven attention to detail in past projects